Concourse

Nevada

IT Status Report & Strategic Plan

February 23, 2026 · Version 2.0

Executive Summary

Governor

Joe Lombardo (R)

CIO

Timothy Galluzi

CISO

Adam Miller (Deputy Director, Office of Information Security & Cyber Defense)

IT Organization

Governor's Technology Office (GTO) / Enterprise IT Services (EITS)

State Agencies

26

Population

3.2M

Key Strengths

  • CORE.NV ERP modernization completed Phase 1A (minimum viable product) in just 15 months -- one of the fastest state ERP deployments nationally -- replacing outdated financial infrastructure with CGI Advantage360 cloud-based platform
  • Nevada established the Office of Information Security & Cyber Defense (OISCD) under SB 467, operational July 2025, with Adam Miller as inaugural leader -- centralizing cybersecurity strategy, 24/7 monitoring, and incident response across all state agencies
  • Demonstrated cybersecurity resilience by recovering from August 2025 ransomware attack affecting 60+ agencies in 28 days without paying ransom, recovering approximately 90% of affected data through collaboration with federal partners and vendors
  • Legislature passed AB 1 in November 2025 special session establishing statewide Security Operations Center (SOC) with dedicated funding, federal grant access, and educational institution partnerships for cybersecurity talent pipeline

Key Risks

  • August 2025 ransomware attack disrupted critical services including DMV and Medicaid across 60+ state agencies -- while recovery was successful, the incident exposed systemic vulnerabilities in legacy infrastructure that required emergency legislative action
  • CORE.NV ERP Phase 2 deployment complexity increases significantly as the project expands beyond financial systems to HR, procurement, and additional modules -- scope growth creates execution risk for a project critical to state operations
  • BEAD broadband deployment ($416M) must overcome Nevada's extreme geography (110,000+ square miles, vast desert terrain, sparse rural population) with construction costs significantly higher per location than most states
  • CIO Timothy Galluzi is managing simultaneous critical initiatives (CORE.NV expansion, post-ransomware remediation, OISCD establishment, BEAD deployment) creating leadership bandwidth risk during a transformational period

Capability Areas

Capability Radar

Cybersecurity & …AI & AutomationDigital Governme…Data Management …Workforce & TalentCloud ServicesBroadband & Conn…IT Procurement &…Interoperability…Legacy Moderniza…
Nevada

Current IT Projects

ProjectStatusDescriptionTimeline
CORE.NV ERP Modernization (Phase 2)In ProgressExpanding CGI Advantage360 cloud-based ERP platform beyond Phase 1A financial systems to include HR, procurement, and additional modules. Building on the successful 15-month Phase 1A MVP deployment completed January 2025. Comprehensive business transformation across executive branch agencies.2025-2028
Statewide Security Operations Center (AB 1)In ProgressEstablishing centralized 24/7 Security Operations Center funded via AB 1 (November 2025 special session). Provides threat detection, incident response, and continuous monitoring across all state agencies. Includes federal grant access and educational institution partnerships for workforce.2025-2027
OISCD OperationalizationActiveFull operationalization of the Office of Information Security & Cyber Defense established under SB 467. Led by Adam Miller, implementing zero-trust principles, minimum security standards, 24/7 monitoring, and coordinated incident response across all state agencies.2025-2026
BEAD Broadband Deployment (High-Speed NV Phase III)Approved$416M BEAD program targeting 43,715 households and businesses with 64% fiber coverage. Complemented by $65M private investment and $150M+ ARPA funds. First $170M+ unlocked January 2026. 18 ISPs provisionally awarded. Deployment expected mid-2026.2026-2030
Post-Ransomware Infrastructure RemediationIn ProgressComprehensive remediation program following August 2025 ransomware attack that affected 60+ agencies. Includes infrastructure hardening, zero-trust implementation, enhanced backup systems, and vulnerability remediation for legacy systems identified as attack vectors.2025-2026

100-Day Strategic Plan

Quick-win initiatives for immediate impact

200-Day Strategic Plan

Strategic initiatives for sustained transformation

Sources

  1. Nevada Governor's Technology Office (GTO) (accessed 2026-02-23)
  2. GovTech: How Nevada's CIO Will Build on Year's Cyber Lessons in 2026 (accessed 2026-02-23)
  3. GovTech: Nevada Meets ERP Milestone, Setting Up Other Modernizations (CORE.NV) (accessed 2026-02-23)
  4. GovTech: Nevada Creates New Cybersecurity Office, Names Its Leader (OISCD) (accessed 2026-02-23)
  5. Nevada Political Journal: Nevada Strengthens Cybersecurity with Statewide SOC After Ransomware Attack (accessed 2026-02-23)
  6. Governor Lombardo: Federal Approval of Nevada's BEAD Plan (accessed 2026-02-23)
  7. NTIA: Biden-Harris Administration Approves Nevada BEAD Final Proposal (accessed 2026-02-23)
  8. Nevada OSIT: BEAD Program (accessed 2026-02-23)
  9. OSIT BEAD Final Proposal Press Release (August 2025) (accessed 2026-02-23)
  10. Telecompetitor: Nevada Broadband Director on BEAD as Phase III of Universal Coverage (accessed 2026-02-23)
  11. Governor's Finance Office: CORE.NV Quarterly Report Q4 FY24 (accessed 2026-02-23)
  12. Governor's Finance Office: CORE.NV Quarterly Report Q1 FY24 (accessed 2026-02-23)
  13. LinkedIn: Darla Dodge, Senior Deputy CIO/COO, State of Nevada (accessed 2026-02-23)
  14. LinkedIn: Nevada OISCD Establishment Announcement (accessed 2026-02-23)
  15. NASCIO 2026 State CIO Top 10 Priorities (accessed 2026-02-23)